git://git.whamcloud.com - fs/lustre-release.git/commit

author	Sebastien Buisson <sbuisson@ddn.com>
	Fri, 21 Apr 2023 13:55:21 +0000 (15:55 +0200)
committer	Oleg Drokin <green@whamcloud.com>
	Tue, 9 May 2023 05:48:14 +0000 (05:48 +0000)
commit	74890266a39297c1c3a41263a7bfd86e0d8e426a
tree	eacf422e8744e918725dd20f4f73ec221f7ca931	tree \| snapshot
parent	d61805600b24b42583c8948bca231c7f56ccaee1	commit \| diff

LU-16758 krb: use Kerberos machine principal in client

In addition to having Lustre client rely on the
lustre_root/<hostname>@REALM principal to authenticate, support the
more standard Kerberos machine principal host/<hostname>@REALM.
That avoids the need for additional keytab entries, and brings Lustre
in line with other services such as OpenSSH and NFS.

Signed-off-by: Sebastien Buisson <sbuisson@ddn.com>
Change-Id: Id50cef1a3a94248b958ce9ea42b5ae356f29cbf1
Reviewed-on: https://review.whamcloud.com/c/fs/lustre-release/+/50709
Tested-by: jenkins <devops@whamcloud.com>
Tested-by: Maloo <maloo@whamcloud.com>
Reviewed-by: Aurelien Degremont <adegremont@nvidia.com>
Reviewed-by: Jonathan Calmels <jcalmels@nvidia.com>
Reviewed-by: Oleg Drokin <green@whamcloud.com>

lustre/utils/gss/lgss_krb5_utils.c		diff \| blob \| history
lustre/utils/gss/lgss_utils.h		diff \| blob \| history
lustre/utils/gss/svcgssd.h		diff \| blob \| history
lustre/utils/gss/svcgssd_proc.c		diff \| blob \| history